$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: p1n4FCT5ZSh+JydFfRwn/Fpy7XSphbPbT80DbVwtF+8= Subject key identifier: 71:BF:D8:6A:A3:C2:2D:A6:BE:FC:B3:5C:1E:D9:9E:B8:78:6C:D5:3B Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 34AD Signing time: Tue 12 Aug 2025 14:54:09 +0000 Manifest this update: Tue 12 Aug 2025 14:54:08 +0000 Manifest next update: Tue 19 Aug 2025 14:54:08 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: o78E3dM/Cjl1a/zngSUzUqdsHXN9+clVnpSvGcnXREU=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Aug 12 14:54:08 2025 GMT Not After : Aug 19 14:54:08 2025 GMT Subject: CN=689b5591-f6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4a:8e:f3:f5:7d:08:79:72:b4:bf:29:11:35: 6b:c1:ea:9f:12:87:d2:4e:45:00:7b:13:e2:af:ee: e6:6c:35:42:47:da:64:7e:30:0a:1a:b5:a6:0f:78: b4:7e:ad:d2:a9:49:65:58:c9:a7:f6:42:12:58:6e: ec:a0:a2:45:5c:c6:63:99:40:79:92:9f:94:e7:36: 33:42:6e:8c:92:8b:e8:70:5d:ad:12:7d:7b:0a:95: b6:7f:77:d7:c9:dc:41:b1:ad:05:16:16:55:33:95: fd:9b:c7:c7:c4:c7:c3:0b:4b:e8:ad:17:ae:0d:c0: 7c:df:70:a1:c2:c5:72:7a:a8:1a:84:ae:2c:3a:49: 38:75:ae:b5:be:c2:8c:cb:d1:e9:2d:d5:6a:a2:80: d3:07:90:80:c7:db:0b:27:50:2a:bf:9b:d6:82:38: 2b:1c:d3:33:89:5f:d7:59:6f:21:c1:97:f5:6b:82: eb:21:8b:b1:22:ca:4b:59:45:1e:90:9f:f3:af:4c: 79:76:b9:b3:76:36:f9:29:a3:ac:d0:b6:36:1a:f5: a8:52:40:ac:3c:37:b9:04:2e:ff:9c:7c:15:3c:c3: 5a:cc:54:9c:ea:3e:d2:04:85:77:16:55:0b:f0:b9: 06:4f:42:e1:c8:7e:c5:54:31:6b:57:2c:4e:cd:de: 7d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BF:D8:6A:A3:C2:2D:A6:BE:FC:B3:5C:1E:D9:9E:B8:78:6C:D5:3B X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:e7:30:24:ae:e0:23:5e:0e:26:e9:ff:21:f2:99:98:77:78: ed:5a:c8:56:29:fc:76:c1:ce:d5:d6:c5:77:cf:76:a6:6c:62: d9:8b:3f:3a:91:62:d0:c4:0a:13:bc:04:4b:cc:42:fe:67:93: 73:bd:d7:e0:3b:3d:94:47:d6:a5:ed:41:e4:a0:6a:59:fd:b6: 0d:1f:17:e9:d4:91:64:4a:d8:14:54:60:9f:60:86:cc:b2:f4: 27:c2:01:39:a4:cd:0a:7c:a8:84:78:6a:a0:06:9a:a1:b1:d7: 30:7c:f5:df:a0:82:fd:3e:3e:67:bc:fe:56:eb:40:4a:33:13: 92:19:72:34:32:0c:33:18:c4:2a:7b:43:f4:c1:35:d1:05:ae: ed:55:b3:9c:81:b4:60:d0:21:26:6e:30:05:79:69:e6:1f:9d: 2c:a8:5b:62:ab:4b:00:a3:69:af:6e:cb:4c:ae:8f:bd:78:48: 1a:b6:4d:7a:18:e8:45:49:7a:7c:fa:6e:22:f7:ab:3f:f4:ff: ac:2a:c5:2b:14:a0:4d:af:8e:8b:56:92:50:68:0e:82:da:05: 4b:a5:16:20:29:fb:79:5e:aa:52:00:02:02:28:8e:65:f6:54: dc:06:08:ec:5b:65:f4:5a:cd:07:df:13:a7:9a:23:e8:e2:25: fe:a9:c5:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUwODEyMTQ1NDA4WhcNMjUwODE5MTQ1NDA4WjAYMRYwFAYD VQQDEw02ODliNTU5MS1mNmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kqO8/V9CHlytL8pETVrweqfEofSTkUAexPir+7mbDVCR9pkfjAKGrWmD3i0 fq3SqUllWMmn9kISWG7soKJFXMZjmUB5kp+U5zYzQm6MkovocF2tEn17CpW2f3fX ydxBsa0FFhZVM5X9m8fHxMfDC0vorReuDcB833ChwsVyeqgahK4sOkk4da61vsKM y9HpLdVqooDTB5CAx9sLJ1Aqv5vWgjgrHNMziV/XWW8hwZf1a4LrIYuxIspLWUUe kJ/zr0x5drmzdjb5KaOs0LY2GvWoUkCsPDe5BC7/nHwVPMNazFSc6j7SBIV3FlUL 8LkGT0LhyH7FVDFrVyxOzd59kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHG/2Gqj wi2mvvyzXB7Znrh4bNU7MB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk5zAkruAjXg4m6f8h8pmYd3jtWshWKfx2wc7V1sV3z3ambGLZiz86 kWLQxAoTvARLzEL+Z5NzvdfgOz2UR9al7UHkoGpZ/bYNHxfp1JFkStgUVGCfYIbM svQnwgE5pM0KfKiEeGqgBpqhsdcwfPXfoIL9Pj5nvP5W60BKMxOSGXI0MgwzGMQq e0P0wTXRBa7tVbOcgbRg0CEmbjAFeWnmH50sqFtiq0sAo2mvbstMro+9eEgatk16 GOhFSXp8+m4i96s/9P+sKsUrFKBNr46LVpJQaA6C2gVLpRYgKft5XqpSAAICKI5l 9lTcBgjsW2X0Ws0H3xOnmiPo4iX+qcUc -----END CERTIFICATE-----Generated at Wed Aug 13 00:33:11 2025 by rpki-client